1. Data Protection

We comply with the principles of the Data Protection Act 2018 and the General Data Protection Regulation (GDPR) when dealing with all data received from customers or visitors to our website.

2. Our Services

We only hold the data necessary to offer services provided on our website. We do not ask for or use more data than necessary to provide you with a proper service. This means we only process and hold data related to purchases and subsequent support related to those purchases, in accordance with Article 6(1)(b) of the General Data Protection Regulation (GDPR). Any processing of your data is only done to provide or perform the services or products you have purchased.

3. Partner Services Data

Customer data transfers through our system from different partner services and software vendors. We store information on customers branches to ensure we can provide branch level control of suppliers. We collect logs from API calls made through our APIs for debugging purposes. These remain on our system for up to 14 days before they are automatically deleted.

We are a data conduit between different software systems that allow them to talk to each other. We may modify and standardise data before passing it to suppliers that you have authorised us to do so through your GlueDog account. We are passing this data at your instruction, and are not responsible for any misuse of data by these parties.

4. Our Role as Data Controller and Processor

Depending on the context, we may act as a data controller or a data processor. When you use our services to connect software platforms, we typically act as a data processor on your behalf. You, as the customer, are the data controller responsible for determining the purposes and means of the data processing. When we collect data for our own operational purposes, such as billing or analytics, we act as the data controller.

5. Data Protection Register

Data is only used for the purposes described in our entry on the Data Protection Register.

6. Required Period

We only hold personal data for as long as necessary. Once data is no longer needed, we delete it.

7. Card & Payment Processing Data

We use third-party payment providers to handle card and payment processing data securely. We never see or store any card or payment information. In accordance with Article 6(1)(b) of the General Data Protection Regulation (GDPR), any other data is only used to process your purchase securely. In accordance with Article 6(1)(c) of the General Data Protection Regulation (GDPR), we need to retain data related to all purchases to fulfil our existing legal obligations to account for tax and VAT on all transactions.

8. Backup & Data Storage

For administrative reasons, customer data and email subscription data may be passed to and stored securely with third-party service providers located outside the EEA (European Economic Area). This is done to backup and preserve your data where it is needed to carry on offering a service to you.

9. Data Requests & Right to Erasure

As a customer, you can at any time (and free of charge) request details of the data we hold relating to you - and you can also request any such data is amended or deleted – the right to erasure (the right to be forgotten). Please note that if you request deletion of your data, this may prevent us from offering any further support relating to your previous purchases or previous services offered to you.

10. Lawful Basis for Processing

We rely on several lawful bases for processing personal data under Article 6 of the GDPR:

- Contractual necessity (Article 6(1)(b)) for providing our services.

- Legal obligation (Article 6(1)(c)) for tax, compliance, and record keeping.

- Consent (Article 6(1)(a)) for marketing communications.

- Legitimate interest (Article 6(1)(f)) for internal analytics and service improvement, where appropriate.

11. Email Updates

We intermittently email website news and information updates to those customers who have specifically subscribed to our email service. All subscription emails sent by us contain clear information on how to unsubscribe from our email service. Our email service is an opt-in service only; with your prior consent required in accordance with Article 6(1)(a) of the General Data Protection Regulation (GDPR). This means to subscribe you must enter your details into the email subscription page and submit them to us.

12. Our Promise

We never sell, rent or exchange mailing lists.

13. Data Sharing with Partners

We do not share commercial or technical data with our partners unless we have specifically sought and obtained your prior approval. Where we request such approval, we will always fully disclose our partners’ details and how your data is used. We only share data with partners that operate their own privacy policy in full accordance with the Data Protection Act 2018 and the General Data Protection Regulation (GDPR). Please note that even when we have your specific consent, we only share data with partners that operate their own privacy policy in full accordance with the Data Protection Act 2018 and the General Data Protection Regulation (GDPR).

14. Spam

We operate In accordance with the Privacy and Electronic Communications (EC Directive) Regulations 2003.

15. Analytics and Tracking

We use analytics tools to understand how users interact with our website and to improve our services. These tools may collect anonymised usage data through cookies or other tracking technologies. We do not use this data to personally identify users.

16. Product Updates

We may send emails to existing customers or prospective customers who have enquired or registered with us, regarding products or services directly provided by us.

17. Data Breach Notification

In the unlikely event of a data breach, we will notify the relevant supervisory authority within 72 hours and inform affected individuals where there is a high risk to their rights and freedoms, in accordance with GDPR requirements.

18. Email Content

All emails sent by us will be clearly marked as originating from us. All such emails will also include clear instructions on how to unsubscribe from our email service and any future emails. Such instructions will either include a link to a page to unsubscribe or a valid email address to which you should reply, with “unsubscribe” as the email subject heading.

19. Cookies

Our website uses "cookies" to track use and allow customers to signup and purchase from our website. Please note that these cookies do not contain or pass any personal, confidential or financial information or any other information that could be used to identify individual visitors or customers purchasing from our website. These cookies will be added automatically when necessary.

20. Contact Us

If you have any questions relating to our Privacy Policy or wish to contact us regarding the data we hold relating to you, please email us at contact@gluedog.ai or use our contact form.